%ents; ]>
Pubsub Signing: OpenPGP Profile Specifies a pubsub signing profile for OpenPGP &LEGALNOTICE; 0476 Experimental Standards Track Standards Council XMPP Core XEP-0001 XEP-0004 XEP-0060 XEP-0373 pss-ox Jérôme Poisson goffi@goffi.org goffi@jabber.fr 0.1.0 2022-12-20 XEP Editor (jsc) Accepted by vote of Council on 2022-11-30. 0.0.1 2022-10-29 jp

First draft.

This XMPP extension protocol specifies a profile of Pubsub Signing to use OpenPGP for signature.

Signing an item with OpenPGP requires to have &xep0373; implemented to handle keys, however this specification uses its own <sign/> element because it uses wrapper element from Pubsub Signing XEP, and signed data MUST NOT be included with the signature.

To sign an element, a client process as explained in XEP-0XXX § Signing a Pubsub Item where the "signing profile" element used is a <sign/> element qualified by the 'urn:xmpp:pubsub-signing:openpgp:0' namespace. This element MUST contain a Base64 encoded (&rfc4648; § 4) OpenPGP message as specified in &rfc4880; which MUST contain a detached signature as defined in &rfc4880; § 11.4 of the signed data as specified in XEP-0XXX § Signing a Pubsub Item.

]]>

If a client supports the protocol specified in this XEP, it MUST advertise it by including the "urn:xmpp:pubsub-signing:openpgp:0" discovery feature in response to a &xep0030; information request:

]]> ... ... ]]>

Security considerations of &xep0373; and XEP-0XXX apply.

TODO

TODO

TODO

Thanks to NLnet foundation/NGI0 Discovery for funding.